CVE-2022-40208
Moodle may allow students to bypass sequential navigation during a quiz attempt in packagist/moodle/moodle
Identifiers
CVE-2022-40208, GHSA-948f-j464-rfj2
Package Slug
packagist/moodle/moodle
Vulnerability
Moodle may allow students to bypass sequential navigation during a quiz attempt
Description
In Moodle, insufficient limitations in some quiz web services made it possible for students to bypass sequential navigation during a quiz attempt.
Affected Versions
All versions before 3.9.16, all versions starting from 3.11.0 before 3.11.9, all versions starting from 4.0.0 before 4.0.3
Solution
Upgrade to versions 3.11.9, 4.0.3, 3.9.16 or above.
Last Modified
2023-03-27
| source |